Lucene search
+L

7 matches found

euvd
euvd
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-0409

Malicious code in bioql PyPI...

9.8CVSS5.9AI score0.00672EPSS
Exploits0References6
veracode
veracode
added 2023/01/29 1:32 p.m.19 views

SQL Injection

liftkit/database is vulnerable to SQL Injection attacks. A specifically crafted attack statement through the processOrderBy function in Query.php allows a malicious user to inject and execute arbitrary SQL queries on the target system...

9.8CVSS4.1AI score0.00672EPSS
Exploits0References4Affected Software1
github
github
added 2023/01/16 12:30 p.m.25 views

SQL Injection in liftkit/database

A vulnerability was found in liftkit database up to 2.13.1. It has been classified as critical. This affects the function processOrderBy of the file src/Query/Query.php. The manipulation leads to sql injection. Upgrading to version 2.13.2 is able to address this issue. The name of the patch is...

9.8CVSS4.2AI score0.00672EPSS
Exploits0References6Affected Software1
osv
osv
added 2023/01/16 12:30 p.m.46 views

GHSA-8HCF-2M4V-F2RQ SQL Injection in liftkit/database

A vulnerability was found in liftkit database up to 2.13.1. It has been classified as critical. This affects the function processOrderBy of the file src/Query/Query.php. The manipulation leads to sql injection. Upgrading to version 2.13.2 is able to address this issue. The name of the patch is...

9.8CVSS7.8AI score0.00672EPSS
Exploits0References6
cvelist
cvelist
added 2023/01/16 10:58 a.m.26 views

CVE-2016-15020 liftkit database Query.php processOrderBy sql injection

A vulnerability was found in liftkit database up to 2.13.1. It has been classified as critical. This affects the function processOrderBy of the file src/Query/Query.php. The manipulation leads to sql injection. Upgrading to version 2.13.2 is able to address this issue. The patch is named...

5.5CVSS9.9AI score0.00672EPSS
Exploits0References4
cve
cve
added 2023/01/16 10:58 a.m.69 views

CVE-2016-15020

CVE-2016-15020 affects the LiftKit database library up to version 2.13.1. The vulnerability is in the function processOrderBy within src/Query/Query.php, where input manipulation leads to an SQL injection. The issue has a fixed release in version 2.13.2 , with the patch identified as 42ec8f2b22e0...

9.8CVSS7.8AI score0.00672EPSS
Exploits0References4Affected Software1
ptsecurity
ptsecurity
added 2023/01/16 12:0 a.m.13 views

PT-2023-10339 · Unknown · Liftkit Database

Name of the Vulnerable Software and Affected Versions: liftkit database versions up to 2.13.1 Description: A critical issue has been found, affecting the function processOrderBy of the file src/Query/Query.php. This leads to sql injection. Recommendations: For liftkit database versions up to...

9.8CVSS6.2AI score0.00672EPSS
Exploits0References9
Rows per page
Query Builder